Lucene search
K

759 matches found

CNNVD
CNNVD
added 2025/06/12 12:0 a.m.2 views

VMware AVI Load Balancer 安全漏洞

VMware Avi Load Balancer is a load balancing platform from VMware. VMware Avi Load Balancer suffers from a SQL injection vulnerability that stems from the application's lack of validation of externally entered SQL statements. An attacker can exploit this vulnerability to execute illegal SQL...

6.8CVSS8AI score0.00277EPSS
Exploits0References2
Citrix
Citrix
added 2025/06/03 12:0 a.m.12 views

NetScaler-13.1-How to limit the IP subnets to access LB vServer with responder policy in NetScaler?

How to allow only specified IP subnets to access LB virtual server with responder policy in NetScaler?...

7.1AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/06/01 4:35 a.m.8 views

CVE-2025-47952

Traefik pronounced traffic is an HTTP reverse proxy and load balancer. Prior to versions 2.11.25 and 3.4.1, there is a potential vulnerability in Traefik managing the requests using a PathPrefix, Path or PathRegex matcher. When Traefik is configured to route the requests to a backend using a...

6.3CVSS6.7AI score0.00784EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2025/05/31 12:0 a.m.4 views

Scaling DeFi with ZK Rollups: Design, Deployment, and Evaluation of a Real-Time Proof-Of-Concept

Ethereum's scalability limitations pose significant challenges for the adoption of decentralized applications dApps. Zero-Knowledge Rollups ZK Rollups present a promising solution, bundling transactions off-chain and submitting validity proofs on-chain to enhance throughput and efficiency. In thi...

6.9AI score
Exploits0
NVD
NVD
added 2025/05/30 4:15 a.m.13 views

CVE-2025-47952

Traefik pronounced traffic is an HTTP reverse proxy and load balancer. Prior to versions 2.11.25 and 3.4.1, there is a potential vulnerability in Traefik managing the requests using a PathPrefix, Path or PathRegex matcher. When Traefik is configured to route the requests to a backend using a...

9.1CVSS0.00784EPSS
Exploits0References4
OSV
OSV
added 2025/05/30 3:37 a.m.3 views

CVE-2025-47952 Traefik allows path traversal using url encoding

Traefik pronounced traffic is an HTTP reverse proxy and load balancer. Prior to versions 2.11.25 and 3.4.1, there is a potential vulnerability in Traefik managing the requests using a PathPrefix, Path or PathRegex matcher. When Traefik is configured to route the requests to a backend using a...

6.3CVSS6.4AI score0.00784EPSS
Exploits0References6
Fedora
Fedora
added 2025/05/30 1:45 a.m.7 views

[SECURITY] Fedora 41 Update: dnsdist-1.9.10-1.fc41

dnsdist is a highly DNS-, DoS- and abuse-aware loadbalancer. Its goal in life is to route traffic to the best server, delivering top performance to legitimate users while shunting or blocking abusive traffic...

7.5CVSS7.2AI score0.00592EPSS
Exploits0
Fedora
Fedora
added 2025/05/30 1:16 a.m.8 views

[SECURITY] Fedora 42 Update: dnsdist-1.9.10-1.fc42

dnsdist is a highly DNS-, DoS- and abuse-aware loadbalancer. Its goal in life is to route traffic to the best server, delivering top performance to legitimate users while shunting or blocking abusive traffic...

7.5CVSS7.2AI score0.00592EPSS
Exploits0
Citrix
Citrix
added 2025/05/30 12:0 a.m.14 views

NetScaler-How to return a customized error page when the LB is Out Of Service

How to return a customized error page when the LB is Out Of Service in NetScaler...

7AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/05/26 12:0 a.m.6 views

The vulnerability of software for managing traffic in hybrid and multi-cloud environments, such as VMware Avi Load Balancer, stems from insufficient measures taken to protect the SQL query structure. This allows attackers to gain unauthorized access to protected information.

The vulnerability of the software for managing traffic in hybrid and multi-cloud environments of VMware Avi Load Balancer is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized acce...

6.8CVSS5.6AI score0.00277EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 6:2 a.m.4 views

CVE-2023-28846

Unpoly is a JavaScript framework for server-side web applications. There is a possible Denial of Service DoS vulnerability in the unpoly-rails gem that implements the Unpoly server protocol for Rails applications. This issues affects Rails applications that operate as an upstream of a load...

7.5CVSS7AI score0.01034EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:23 p.m.4 views

CVE-2020-11491

Monitoring::Logs in Zen Load Balancer 3.10.1 allows remote authenticated admins to conduct absolute path traversal attacks, as demonstrated by a filelog=/etc/shadow request to index.cgi...

4.9CVSS5.2AI score0.0787EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:10 p.m.8 views

CVE-2020-11490

Manage::Certificates in Zen Load Balancer 3.10.1 allows remote authenticated admins to execute arbitrary OS commands via shell metacharacters in the index.cgi certissuer, certdivision, certorganization, certlocality, certstate, certcountry, or certemail parameter...

9CVSS7.7AI score0.01926EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:5 p.m.6 views

CVE-2020-26693

A stored cross-site scripting XSS vulnerability was discovered in pfSense 2.4.5-p1 which allows an authenticated attacker to execute arbitrary web scripts via exploitation of the loadbalancermonitor.php function...

5.4CVSS5.6AI score0.05313EPSS
Exploits0
CNVD
CNVD
added 2025/05/22 12:0 a.m.3 views

Google Cloud Classic Application Load Balancer Input Validation Error Vulnerability

Google Cloud Classic Application Load Balancer is a legacy application load balancing service from Google, Inc. that is used to automatically distribute traffic to back-end service instances in a cloud environment. An input validation error vulnerability exists in Google Cloud Classic Application...

8.7CVSS6.9AI score0.00187EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/22 12:0 a.m.3 views

PT-2025-22880 · Vmware · Vmware Avi Load Balancer

Name of the Vulnerable Software and Affected Versions: VMware Avi Load Balancer affected versions not specified Description: The issue is related to a lack of protection against SQL query structure exploitation in VMware Avi Load Balancer, allowing a remote attacker to gain unauthorized access to...

6.8CVSS7.2AI score0.00277EPSS
Exploits0References8
CNNVD
CNNVD
added 2025/05/20 12:0 a.m.2 views

DNSdist 安全漏洞

DNSdist is a highly DNS, DoS and abuse aware load balancer from DNSdist open source. A security vulnerability exists in DNSdist that stems from improperly restricted TCP connection queries, which could lead to a denial of service attack...

7.5CVSS8.4AI score0.00592EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/18 2:15 p.m.7 views

CVE-2025-4600

A request smuggling vulnerability existed in the Google Cloud Classic Application Load Balancer due to improper handling of chunked-encoded HTTP requests. This allowed attackers to craft requests that could be misinterpreted by backend servers. The issue was fixed by disallowing stray data after ...

8.7CVSS6.7AI score0.00187EPSS
Exploits0References1
OSV
OSV
added 2025/05/16 2:15 p.m.3 views

CVE-2025-4600

A request smuggling vulnerability existed in the Google Cloud Classic Application Load Balancer due to improper handling of chunked-encoded HTTP requests. This allowed attackers to craft requests that could be misinterpreted by backend servers. The issue was fixed by disallowing stray data after ...

7.5CVSS5.8AI score0.00187EPSS
Exploits0References1
NVD
NVD
added 2025/05/16 2:15 p.m.18 views

CVE-2025-4600

A request smuggling vulnerability existed in the Google Cloud Classic Application Load Balancer due to improper handling of chunked-encoded HTTP requests. This allowed attackers to craft requests that could be misinterpreted by backend servers. The issue was fixed by disallowing stray data after ...

8.7CVSS0.00187EPSS
Exploits0References1
Rows per page
Query Builder